Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/Qu_3bWXKtsoV2OQIlDp3k2YzVog.roa
File: Qu_3bWXKtsoV2OQIlDp3k2YzVog.roa (raw, json)
Hash identifier: cU6x+QsEYSHoYYFIHJ4NKriN7eoNBiFP2U9kejXoees=
Subject key identifier: 42:EF:F7:6D:65:CA:B6:CA:15:D8:E4:08:94:3A:77:93:66:33:56:88
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0797
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Qu_3bWXKtsoV2OQIlDp3k2YzVog.roa
Signing time: Tue 29 Sep 2020 10:04:26 +0000
ROA not before: Tue 29 Sep 2020 10:04:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 61.67.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1943 (0x797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 10:04:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42EFF76D65CAB6CA15D8E408943A779366335688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:80:d3:cc:89:16:3b:df:2c:47:f1:d3:1e:b4:
e4:bd:9f:8e:5b:35:aa:d7:3b:74:66:fb:00:99:63:
c1:af:ad:9f:a1:67:11:82:09:a7:17:2b:98:68:62:
86:6b:1c:7f:2c:ce:91:7c:c7:cb:79:95:e1:34:56:
63:8d:8e:7e:1b:a9:9b:28:38:4e:60:f8:c1:e1:d8:
55:62:85:0b:f3:07:a1:1c:f9:39:5a:64:cd:1b:13:
fc:4e:95:a0:78:6f:9f:4f:fa:f3:cd:a6:24:8c:ba:
fc:c9:d3:6d:9e:a3:05:82:02:10:b5:d7:95:7d:ea:
da:64:65:70:47:f9:ec:7c:d4:f5:b1:40:21:4f:58:
45:03:1e:53:1e:b9:cc:79:88:78:fe:06:bc:41:1e:
b7:46:28:c6:ed:d1:fb:3e:87:b1:ce:13:fe:c9:07:
be:25:35:ed:66:00:2d:66:42:27:b5:63:47:dd:e4:
91:ed:d3:bf:c4:5b:3e:2a:c8:87:e4:73:16:1f:62:
91:5d:cd:d9:da:03:63:82:9e:43:31:21:83:32:02:
b8:48:a2:4a:a5:bd:c8:78:12:e9:82:ee:68:b7:21:
61:ed:45:d8:52:94:fa:7a:8b:50:0e:cc:fd:fe:12:
16:33:ed:17:74:14:a5:c1:15:55:cc:ce:33:75:8f:
b7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EF:F7:6D:65:CA:B6:CA:15:D8:E4:08:94:3A:77:93:66:33:56:88
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Qu_3bWXKtsoV2OQIlDp3k2YzVog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.209.0/24
Signature Algorithm: sha256WithRSAEncryption
67:c2:94:5a:3d:49:5a:47:b8:a9:d8:01:04:c5:e6:01:bd:37:
28:45:95:a7:78:12:eb:cc:57:50:f6:ff:2c:b9:19:18:08:ad:
9d:e1:d7:64:5c:cc:57:56:37:57:0d:bc:a6:b8:06:99:c1:b2:
cd:2a:31:a0:64:09:cc:40:90:86:b2:2b:6c:c3:65:e9:74:8d:
72:37:49:be:d3:a6:0c:07:b5:36:b8:f9:1f:95:d1:a6:0e:9e:
31:1b:51:43:fe:e7:ff:70:20:03:49:38:7c:36:26:10:16:93:
b4:53:69:a2:02:75:95:c4:72:65:55:1a:1f:f0:68:96:5c:84:
94:4a:40:82:dc:99:12:ea:0c:7b:5b:ae:36:3f:e4:21:fe:44:
9e:74:6b:3f:c0:7c:60:a3:a9:15:81:bc:42:89:b0:09:8b:f9:
33:50:2a:f1:52:c8:2b:8c:b8:0b:73:aa:68:d7:1c:ca:cd:a0:
28:a0:e6:9e:ae:d2:c8:fc:04:6c:2a:31:34:4f:37:71:0c:0c:
4b:30:33:b2:13:e7:38:58:dd:ab:09:e6:20:6c:fa:ca:88:93:
54:1c:99:5a:67:96:7d:42:f1:4f:c8:aa:f8:71:2d:c5:87:50:
39:89:b9:93:77:78:ab:b1:6b:bc:bc:a2:57:bd:37:0f:ae:ee:
66:88:82:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:25 2025 by rpki-client